McAfee has taken steps to integrate its vulnerability assessment and policy management products in a single suite to make it easier for enterprises to stay on top of compliance initiatives.
Total Protection for Compliance provides centralized reporting for audit and compliance purposes via ePO (ePolicy Orchestrator), the primary management console for a wide array of McAfee security products. It lets security managers combine audit and scanning results to generate reports for compliance initiatives such as the Payment Card Industry guidelines, federal requirements like FISMA, and the Center for Internet Security's best practices, says Bob Tesh, McAfee's group marketing manager.
[ Learn how to secure your systems with Roger Grimes' Security Adviser blog and newsletter, both from InfoWorld. ]
McAfee's Vulnerability Manager and Policy Auditor products are included in Total Protection for Compliance.
"We've changed Vulnerability Manager, which performs agent-less policy assessments, so it's now looking for both the known good as well as the vulnerabilities," Tesh says.
Vulnerability Manager 6.7 (formerly Foundstone Enterprise) is now integrated with ePO so it can populate ePO with information about IT assets in order to generate compliance-related reports, Tesh notes.
Policy Auditor 5.0.1, McAfee's agent-based software that runs on desktops and servers, is also now sharing information with ePO that can be used to centralize automated compliance reporting.
Another new element in the Total Protection for Compliance suite is what McAfee is calling its CARMA (Counter-Measure Aware Risk-Management Application), which takes threat information produced by McAfee Avert labs to co-relate with any discovered vulnerabilities in IT assets.
While not intended for real-time analysis, the CARMA-generated reports with ePO give security managers details about where their systems may be vulnerable to new types of threats, and can help justify investment in endpoint security protection, Tesh said.
Total Protection for Compliance is priced based on the number of monitored IP addresses, ranging from $100 to as low as $10 with 75,000 monitored assets.
Network World is an InfoWorld affiliate.
Get the independent advice and expertise you need to support a virtual workforce.
The increase in Linux popularity has increased the frequency and sophistication of malware attacks. Read this 2 page white paper now to learn how you can protect your Linux environment with real-time protection that is certified by all major Linux vendors.
Download now »
Ensuring acceptable application delivery will become even more difficult over the next few years. As a result, IT organizations need to ensure that the approach that they take to resolving the current application delivery challenges can scale to support the emerging challenges. This handbook elaborates on the key tasks associated with planning, optimization, management and control and provides decision criteria to help IT organizations choose appropriate solutions.
Download now »
A common misconception is that mid-range storage requirements are dramatically different than that of a larger enterprise. Mid-range storage users may require less capacity, but they have similar functionality and management requirements. This ESG paper examines mid-range storage needs and reviews a new solution that adjusts size while retaining value, performance and functionality.
Download now »
Sign up to receive Networking Resource Alerts
Recommend This
